spring-security/docs/modules/ROOT/pages/whats-new.adoc

[[new]]
= What's New in Spring Security 6.3

Spring Security 6.3 provides a number of new features.
Below are the highlights of the release.

== General

- https://spring.io/blog/2024/01/19/spring-security-6-3-adds-passive-jdk-serialization-deserialization-for[blog post] - Added Passive JDK Serialization/Deserialization for Seamless Upgrades

== Configuration

- https://github.com/spring-projects/spring-security/issues/6192[gh-6192] - xref:reactive/authentication/concurrent-sessions-control.adoc[docs] Add Concurrent Sessions Control on WebFlux

== CAS

- https://github.com/spring-projects/spring-security/pull/14193[gh-14193] - Added support for CAS Gateway Authentication

== Crypto

- https://github.com/spring-projects/spring-security/issues/14202[gh-14202] - Migrated spring-security-rsa into spring-security-crypto

== OAuth2

- https://github.com/spring-projects/spring-security/issues/13259[gh-13259] - Customize when UserInfo is called
- https://github.com/spring-projects/spring-security/pull/14168[gh-14168] - Introduce Customizable AuthorizationFailureHandler in OAuth2AuthorizationRequestRedirectFilter
- https://github.com/spring-projects/spring-security/issues/5199[gh-5199], https://github.com/spring-projects/spring-security/issues/14701[gh-14701] - Add support for OAuth 2.0 Token Exchange Grant
- https://github.com/spring-projects/spring-security/issues/14672[gh-14672] - Customize mapping the OidcUser from OidcUserRequest and OidcUserInfo

== Documentation

- https://github.com/spring-projects/spring-security/pull/14263[gh-14263] - xref:servlet/authentication/passwords/caching.adoc[(docs)] - Add documentation for CachingUserDetailsService
Extract subsections for preface Issue: gh-2567 2018-03-05 17:56:47 -05:00			`[[new]]`
Prepare for Spring Security 6.3 Closes gh-14210 2023-12-05 17:34:14 -05:00			`= What's New in Spring Security 6.3`
Extract subsections for preface Issue: gh-2567 2018-03-05 17:56:47 -05:00
Prepare for Spring Security 6.3 Closes gh-14210 2023-12-05 17:34:14 -05:00			`Spring Security 6.3 provides a number of new features.`
Extract subsections for preface Issue: gh-2567 2018-03-05 17:56:47 -05:00			`Below are the highlights of the release.`
Add Max Sessions on WebFlux Closes gh-6192 2023-07-25 14:31:30 -04:00
Add Passive Serialization to What's New Issue gh-14409 2024-01-31 09:28:23 -05:00			`== General`

			`- https://spring.io/blog/2024/01/19/spring-security-6-3-adds-passive-jdk-serialization-deserialization-for[blog post] - Added Passive JDK Serialization/Deserialization for Seamless Upgrades`

Add Max Sessions on WebFlux Closes gh-6192 2023-07-25 14:31:30 -04:00			`== Configuration`

			`- https://github.com/spring-projects/spring-security/issues/6192[gh-6192] - xref:reactive/authentication/concurrent-sessions-control.adoc[docs] Add Concurrent Sessions Control on WebFlux`
Polish gh-14193 Issue gh-14193 2023-12-20 08:54:16 -05:00
			`== CAS`

			`- https://github.com/spring-projects/spring-security/pull/14193[gh-14193] - Added support for CAS Gateway Authentication`
Migrate spring-security-rsa into spring-security-crypto Closes gh-14202 2023-12-27 08:45:59 -05:00
			`== Crypto`

			`- https://github.com/spring-projects/spring-security/issues/14202[gh-14202] - Migrated spring-security-rsa into spring-security-crypto`
Update What's New for 6.3 2024-03-11 13:21:44 -04:00
			`== OAuth2`

			`- https://github.com/spring-projects/spring-security/issues/13259[gh-13259] - Customize when UserInfo is called`
			`- https://github.com/spring-projects/spring-security/pull/14168[gh-14168] - Introduce Customizable AuthorizationFailureHandler in OAuth2AuthorizationRequestRedirectFilter`
			`- https://github.com/spring-projects/spring-security/issues/5199[gh-5199], https://github.com/spring-projects/spring-security/issues/14701[gh-14701] - Add support for OAuth 2.0 Token Exchange Grant`
			`- https://github.com/spring-projects/spring-security/issues/14672[gh-14672] - Customize mapping the OidcUser from OidcUserRequest and OidcUserInfo`

			`== Documentation`

			`- https://github.com/spring-projects/spring-security/pull/14263[gh-14263] - xref:servlet/authentication/passwords/caching.adoc[(docs)] - Add documentation for CachingUserDetailsService`